aboutsummaryrefslogtreecommitdiff
path: root/KMemDriver
Commit message (Collapse)AuthorAge
* minor improvmentssegfault2021-04-18
|
* Added new MemDriverLib functions to determine if a page is freed/reserved.segfault2021-01-11
| | | | | * added PAGES/RPM tests * increased memory for ZwQuerySystemInformation in GetProcesses
* Removed KTest-Only script and added PastDSE-Manual-Map scripts to VS.segfault2021-01-07
|
* CheattEngineServer: CMD_OPENPROCESS, CMD_PROCESS32FIRST, CMD_PROCESS32NEXT, ↵segfault2020-12-15
| | | | | | | | CMD_CLOSEHANDLE * KMemDriver integration * generic MT-Support achieved by synchronized wrapper functions * ability to spawn a Ping-Only Thread
* Fixed typ0.segfault2020-12-12
|\
| * Removed superfluous code.segfault2020-12-02
| | | | | | | | * Re-Enabled Release targets
* | Added KMemDriver GetProcesses to enumerate all processes from kernel space.segfault2020-12-12
| | | | | | | | * fixed missing NUL termination for converted ASCII strings
* | Removed superfluous code.segfault2020-12-02
|/ | | | * Re-Enabled Release targets
* Reformatting and CTRL-Process wait issue.segfault2020-11-30
|
* Added Crypto function bodies, renamed ASM fn to get next RIP after return ↵segfault2020-10-12
| | | | and improved CRYPTO_* macros.
* Added code de/encryption on function level (WiP).segfault2020-10-11
|
* Added simple x86_64-ASM source to get the current IP.segfault2020-10-11
|
* Added some PTE code for future use.segfault2020-10-01
|
* Replaced PsSetLoadImageNotifyRoutine with a PatchGuard safe version.segfault2020-10-01
|
* updated to v141 platform toolset and fixed missing include paths / linker libssegfault2020-03-15
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* added MEM_RESERVE as comment, needs to be verified if it is required for a ↵Toni Uhlig2019-11-10
| | | | stable VAD Unlink
* do not rely on the exact size during VALLOC and do not manually calculate ↵Toni Uhlig2019-09-21
| | | | the page size (which was done wrong) since it is done by the OS
* added support for full DLL paths for MEM_MODULESToni Uhlig2019-09-19
|
* added debug message in KMemDriver if the system decides to change the ↵Toni Uhlig2019-09-18
| | | | alloc'd address and size
* removed alloc/free/VAD remnants in UpdatePPEPIfRequiredToni Uhlig2019-09-17
|
* implemented MEM_VUNLINKToni Uhlig2019-09-17
|
* use RtlAvlRemoveNode in VADUnlink iff all methods from BB failedToni Uhlig2019-09-17
|
* implemented MEM_VFREEToni Uhlig2019-09-17
|
* added newlines to seperate operations and writeback mechanism, added ↵Toni Uhlig2019-09-16
| | | | MEM_VALLOC operation
* prefixed alloc, free and unlink to prevent naming collision and added ↵Toni Uhlig2019-09-16
| | | | missing implementation debug message
* VAD Unlink test, currently not working as expectedToni Uhlig2019-09-15
|
* fixed invalid KeProtectVirtualMemory call (have: PEP, wanted: PROC_HANDLE)Toni Uhlig2019-09-08
|
* export process memory allocationa and vad testToni Uhlig2019-09-07
|
* * moved KDBG to KMemDriver.hToni Uhlig2019-08-23
| | | | | * moved GetPages, GetModules to Memory.c * moved VAD routines to VAD.c
* exported KMemDriver virt mem related functions to an extra moduleToni Uhlig2019-08-20
|
* KMemdriver GetModules for 32 bit target processesToni Uhlig2019-08-03
|
* project structure refactoringToni Uhlig2019-07-07
|
* httplib; simple web interface; moved KInterface.h to include/Toni Uhlig2019-07-02
|
* alloc non cached memory (dynamic mem) and find VAD ptr worksToni Uhlig2019-06-21
|
* Blackbone VAD stuff: VADFindNodeOrParent, VADFindToni Uhlig2019-06-15
| | | | read VAD AVL tree during UpdatePPEPIfRequired
* added MiFindNodeOrParent from BlackBoneToni Uhlig2019-06-13
|
* added some verified VAD structures + native offset enumToni Uhlig2019-06-12
|
* get VAD root for win10 1803Toni Uhlig2019-06-10
|
* initial commitToni Uhlig2019-05-07
Powered by cgit, Themed by Ted Yin.